3 matches found
CVE-2023-41863
Unauth. Stored Cross-Site Scripting XSS vulnerability in Pepro Dev. Group PeproDev CF7 Database plugin = 1.7.0 versions...
CVE-2023-41863
CVE-2023-41863 affects the WordPress plugin PeproDev CF7 Database (≤ 1.7.0). The vulnerability is an unauthenticated Stored Cross-Site Scripting (XSS) via form submission, as detailed in Patchstack and corroborated by Wordfence listings. Impact is XSS execution impacting site visitors; exploitati...
WordPress PeproDev CF7 Database Plugin <= 1.7.0 is vulnerable to Cross Site Scripting (XSS)
Software PeproDev CF7 Database Type Plugin Vulnerable versions = 1.7.0 Fixed in 1.8.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-41863 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9fea5340d869 Credits RE-ALTER Required privileg...